Acunetix has launched the Acunetix Web Site Security Center, a comprehensive web site security information center that educates visitors on the latest and most threatening web application hacking techniques. The new information center is hosted at http://www.acunetix.com/websitesecurity/ and is frequently updated with current information concerning new hacking techniques.
Web site security is possibly today´s most overlooked aspect of securing the enterprise. Hackers are concentrating their efforts on web sites: 75% of cyber attacks are launched on shopping carts, forms, login pages, dynamic content etc. Firewalls, SSL and locked-down servers are futile against web application hacking!
Common web hacking techniques, such as SQL injection, cross site scripting, authentication hacking, CRLF injection, Google hacking and directory traversal are discussed in great detail in the Web Site Security Center, with information on how they work, how to find the vulnerabilities, and how to fix vulnerabilities so that valuable enterprise data and applications are no longer at risk.
“We are still at a stage where many large enterprise organizations do not yet fully understand how vulnerable they may be to web hacking attempts,” noted Nick Galea, CEO of Acunetix. “As they learn more about web attacks, they tend to recognize what´s at risk and they start taking the necessary precautions.”
“In addition to increasing their understanding of web vulnerabilities, the most important thing enterprises can do to secure their data is to use web site vulnerability scanning software, and to scan applications every time there is a code change.” adds Galea.